Sophisticated Booking.com Scam Targeting Guests with Vidar Infostealer

Cybersecurity firm Secureworks has exposed a scam on Booking.com. Hackers compromised hotel accounts to dupe users into providing payment details. The scammers used deceptive emails, mimicking a hotel guest losing their valuables to gain the trust of staff, installing the Vidar infostealer malware in the process. They charged guests with immediate payment to retain their reservations. The attackers also sold Booking.com credentials on the dark web. Although Booking.com itself hasn’t been breached directly, the company is working with impacted hotels to enhance security.